Malicious Python package Targets AWS Credentials, Impacts 37,000 Developers
A team of researchers from Socket has uncovered a malicious Python package named “fabrice,” deceptively masquerading as the popular library “fabric.” This package, present on PyPI since 2021 and downloaded over 37,000 times, discreetly...